CVE-2020-16952
Discovered: Proof-of-Concept released & vulnerability patched by Microsoft on October 13
Impacted Tech:
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Server 2019
Note that SharePoint Online via Office365 is not affected.
Attacker Location: Authenticated access to SharePoint with page creation permission
Highlights: Public proof of concept is available and is very easy to exploit using breached credentials or chaining it with a phishing attack.
What should I do? Apply the patch from Microsoft as soon as possible.
References:
MSFT Advisory: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16952
Researcher’s Advisory and PoC: https://srcincite.io/advisories/src-2020-0022/
Metasploit Module: https://github.com/rapid7/metasploit-framework/pull/14265
Vulnerability Alert 